Versions Compared

Old Version 12

changes.mady.by.user Nicole Roy

Saved on

compared with

New Version 13

changes.mady.by.user Nicole Roy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...


Baseline Expectation

Metadata Requirements

Other Requirements

“The IdP is operated with organizational-level authority”

N/A

Federation Manager Application:

  • Review web UI for consistency with Baseline Expectations (terminology, grouping/layout of controls, etc.)

  • Add references to Baseline Expectations with links to appropriate documentation

“The IdP is trusted enough to be used to access the organization’s own systems”

N/A

Federation Manager Application:

  • Review web UI for consistency with Baseline Expectations (terminology, grouping/layout of controls, etc.)

  • Add references to Baseline Expectations with links to appropriate documentation

“Generally-accepted security practices are applied to the IdP”

REQUIRED:

  • SSL certificates on endpoints are in place

SSL certificates are subject to quality testing performed by InCommon operations or a service provider on its behalf.  Results of these scans may be saved by and acted upon by InCommon operations at its discretion.

“Federation metadata is accurate, complete, and includes site technical, admin, and security contacts, MDUI information, and privacy policy URL”

REQUIRED:

  • Entity includes at least one "technical" contact with a valid email address

  • Entity includes at least one "administrative" contact with a valid email address

  • Entity includes at least one "security" contact with a valid email address

  • Entity includes a valid DisplayName

  • Entity includes a valid HTTPS Logo URL

  • Entity includes a valid PrivacyStatementURL


RECOMMENDED:

  • IDPSSODescriptor includes a valid errorURL attribute

Logo and privacy policy URL subject to the following test conditions:

REQUIRED:

  • Results in a ‘200’ based on an HTTP GET


...